From 63daf6ef89c51747fe32599ebb5d0e4b5607a4a5 Mon Sep 17 00:00:00 2001 From: Rhys Arkins <rhys@arkins.net> Date: Sun, 10 Mar 2019 05:20:41 +0100 Subject: [PATCH] refactor: vulnerability manager mapping --- lib/workers/repository/init/vulnerability.js | 20 +++++++++---------- .../__snapshots__/vulnerability.spec.js.snap | 4 ++-- 2 files changed, 12 insertions(+), 12 deletions(-) diff --git a/lib/workers/repository/init/vulnerability.js b/lib/workers/repository/init/vulnerability.js index 6d5956a1ce..648e75218d 100644 --- a/lib/workers/repository/init/vulnerability.js +++ b/lib/workers/repository/init/vulnerability.js @@ -29,17 +29,17 @@ async function detectVulnerabilityAlerts(input) { ) .map(alert => { const rule = {}; - const languageMapping = { - MAVEN: ['java'], - NPM: ['js'], - NUGET: ['dotnet'], - PIP: ['python'], - RUBYGEMS: ['ruby'], + const managerMapping = { + MAVEN: ['maven'], + NPM: ['npm'], + NUGET: ['nuget'], + PIP: ['pip_requirements'], + RUBYGEMS: ['bundler'], }; - const languages = - languageMapping[alert.securityVulnerability.package.ecosystem]; - if (languages) { - rule.languages = languages; + const managers = + managerMapping[alert.securityVulnerability.package.ecosystem]; + if (managers) { + rule.managers = managers; } rule.packageNames = [alert.securityVulnerability.package.name]; // Raise only for where the currentVersion is vulnerable diff --git a/test/workers/repository/init/__snapshots__/vulnerability.spec.js.snap b/test/workers/repository/init/__snapshots__/vulnerability.spec.js.snap index c4793b921d..1cc32e5f1f 100644 --- a/test/workers/repository/init/__snapshots__/vulnerability.spec.js.snap +++ b/test/workers/repository/init/__snapshots__/vulnerability.spec.js.snap @@ -12,8 +12,8 @@ Array [ "schedule": Array [], "vulnerabilityAlert": true, }, - "languages": Array [ - "js", + "managers": Array [ + "npm", ], "matchCurrentVersion": "< 1.8.3", "packageNames": Array [ -- GitLab